Senior Security Engineer

About Nubank

Nubank was founded in 2013 to free people from a bureaucratic, slow and inefficient financial system. Since then, through innovative technology and outstanding customer service, the company has been redefining people's relationship with money across Latin America. With operations in Brazil, Mexico and Colombia, Nubank is today the largest digital banking platform in the world  and one of the leading technology companies in the world, reinventing over 60 million customers' financial lives.

Nubank achieved this by offering a no-fee credit card, entirely managed by a mobile app, and a digital account, free of taxes. Nubank also offers transparent and hassle-free personal loans, a business account tailored for SMBs, and life insurance. In 2020, Nubank acquired digital broker Easynvest, now called Nu invest, and became the leader in self-directed digital investments in Brazil. 

Throughout the years, Nubank raised around US$2 billion with some of the best-known growth and technology investors in the world, such as Berkshire Hathaway, Sequoia, DST, Tencent, Tiger, Kaszek, Founders Fund, Dragoneer, TCV, Redpoint, Ribbit, GIC, Whale Rock, Invesco, QED, and Capital Group.

Today, Nubank is a global company, with offices in São Paulo (Brazil), Mexico City (Mexico), Buenos Aires (Argentina), Bogotá (Colombia), Durham (United States) and Berlin (Germany). Nubank was founded in São Paulo by Colombian David Vélez, and cofounded by Brazilian Cristina Junqueira and American Edward Wible. For more information, visit www.nubank.com.br.

Responsibilities:

• Design, implement, and support multi-country security solutions and processes for on-premises and cloud infrastructures, defining and developing automation to enable large-scale deployments and operations;
• Support the policies and documentation developing on security best practices for new endpoint technologies, contributing to technical documentation targeted for non-engineers, so they can understand what the system does at a high level. Also contributes to lower-level documentation targeted for engineers as a result of whiteboards and other technical discussions;
• Ensure endpoints, system security applications, and services in the environment are securely configured and managed through operating system-appropriate security platforms and tools;
• Supporting for assessing company risk as it relates to endpoints and protection of information;
• Support security reviews and audits to help the internal audit team with endpoint security issues and compliance activities, participating actively in discussions;
• Support to respond to endpoint cyber threats, incidents, and anomalies, anticipating technical issues at the enterprise function and platform level and making architectural and design decisions to avoid them;
• Evaluate build vs buy system alternatives under general direction, understanding and articulating the tradeoffs between technical, analytical, and platform needs, efficiency vs. thoroughness, adding vs. reducing technical debt, etc.

Skills and knowledge

• Strong understanding of operation systems (Windows, macOS, and Linux), and security protocols, including authentication and authorization;
• Knowledge of application layer technologies, network security, BCP, DRP, and cryptography;
• Experience with research, analysis, and visualization data tools, identity/access management, security operations, and analytics;
• Technical expertise with cloud environment (AWS, GCP, Azure) and on-premise technologies;
• Experience with automation languages (preferably Python);
• Experience in major incident management and security incident response;
• Experience in listening and guiding technical debates to help reach a consensus;
• Soft skills, including effective communication with team members and senior management;
• Ability to conduct an in-depth analysis of computer networks and identify any vulnerabilities or gaps in the system;
• Quick decision-making to ensure faster recovery in case of a security event, helping in the quick-fixing of flaws;
• Awareness of the latest methods used by hackers and malicious elements to break into systems.
• Fluent english

Benefits

• Equity at Nubank
• Health and life insurance 
• Food card
• 15 days of paid vacation ]
• Holiday Bonus ("Aguinaldo") of 30 days of pay per year
• NuCare - Our mental health and wellness assistance program
• NuLanguage - Our language learning program
• Extended maternity and paternity leaves

Diversity & Inclusion

At Nubank, we want to be sure that we're building a more diverse and inclusive workplace that reflects the customers we serve and seek to empower. That's why we hire based on equality. We consider gender, ethnicity, race, religion, sexual orientation, and other identity markers as enriching elements to our company while ensuring neither of them represent a barrier when recruiting fantastic talent.